2019-10-11 10:35:59
mitre
PUBLISHED
IceWarp Webclient before 10.2.1 has XSS via an HTTP POST request: admin/login.html with the parameter username is persistent in 10.2.0.